CVE-2024-33587

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Apr 29, 2024

Updated: Apr 30, 2024

CWE ID 862

Summary

CVE-2024-33587 is a new vulnerability affecting Secure Copy Content Protection and Content Locking, with versions from n/a to 3.9.0 impacted. This missing authorization issue allows unauthorized access to copy protected content due to insufficient access control checks. Attackers can exploit this vulnerability to bypass the intended access restrictions, potentially resulting in data leakage or unintended modifications. Organizations using the affected software are advised to update to a patched version as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vlkET_
https://www.cve.org/CVERecord?id=CVE-2024-33587
https://nvd.nist.gov/vuln/detail/CVE-2024-33587

Back to Vulnerability Database

CVE-2024-33587

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations